Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    OpenVPN virtual IPs?

    Scheduled Pinned Locked Moved OpenVPN
    5 Posts 3 Posters 685 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      beefer
      last edited by

      Hi,

      I'm using OpenVPN with port forwarding to access various services in my network. Unfortunately a lot of them require to use the same port, hence port forwarding is a hassle for me (I have to constantly customize port settings when I'm accessing them from the outside since only pfsense box ip is available inside the vpn).

      Is it possible to expose my LAN IPs to the VPN network? Or maybe I could just create a rule for VPN network to pass traffic to given IPs from other LAN and I would be fine?

      Thanks in advance!

      RicoR 1 Reply Last reply Reply Quote 0
      • RicoR
        Rico LAYER 8 Rebel Alliance @beefer
        last edited by Rico

        @beefer said in OpenVPN virtual IPs?:

        Is it possible to expose my LAN IPs to the VPN network?

        Yes, this is how you normally use the OpenVPN RAS. ;-)

        @beefer said in OpenVPN virtual IPs?:

        Or maybe I could just create a rule for VPN network to pass traffic to given IPs from other LAN and I would be fine?

        If your other Settings are correct you just need some Firewall Rules.
        Maybe you could just re-run the OpenVPN wizard, in the last step there is some option to let the wizard create Rules.
        And check out https://www.netgate.com/docs/pfsense/vpn/openvpn/openvpn-remote-access-server.html

        -Rico

        1 Reply Last reply Reply Quote 0
        • DerelictD
          Derelict LAYER 8 Netgate
          last edited by

          Is this your own server or some provider that forwards ports into your network?

          If the former, I don't get where port forwards come into it at all.

          If the latter, spin up your own remote access server on your WAN to connect to internal assets. Works great. No NAT or anything required.

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • B
            beefer
            last edited by

            Thanks a lot for clarification! This is my own server - all I needed to do is to setup a rule to allow access lan network from vpn network and add a route on the client. Now, pfsense is just pure awesomeness :)

            1 Reply Last reply Reply Quote 0
            • RicoR
              Rico LAYER 8 Rebel Alliance
              last edited by

              Depending on your OpenVPN RAS setup the route is pushed to the Client, no need for manual steps.

              -Rico

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.